CVE-2023-27537

moderate-risk

Published 2023-03-30

A double free vulnerability exists in libcurl <8.0.0 when sharing HSTS data between separate "handles". This sharing was introduced without considerations for do this sharing across separate threads but there was no indication of this fact in the documentation. Due to missing mutexes or thread locks, two threads sharing the same HSTS data could end up doing a double-free or use-after-free.

Do I need to act?

0.08% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.9/10 Medium

NETWORK / HIGH complexity

Affected Products (11)

Libcurl

Active Iq Unified Manager

Clustered Data Ontap

Brocade Fabric Operating System Firmware

H300S Firmware

H500S Firmware

H700S Firmware

H410S Firmware

Universal Forwarder

Affected Vendors

Broadcom Haxx Netapp Splunk

References (6)

Exploit https://hackerone.com/reports/1897203

Third Party Advisory https://security.gentoo.org/glsa/202310-12

Third Party Advisory https://security.netapp.com/advisory/ntap-20230420-0010/

Exploit https://hackerone.com/reports/1897203

Third Party Advisory https://security.gentoo.org/glsa/202310-12

Third Party Advisory https://security.netapp.com/advisory/ntap-20230420-0010/

/ 100

moderate-risk

Severity 18/34 · Moderate

Exploitability 0/34 · Minimal

Exposure 16/34 · Moderate